Your API keys are like a username and password; if there’s any chance that they’ve been exposed (e.g. if one of your developers leaves the company or if you send the keys in an email), you should generate new ones. Developers often refer to this as rotating your API keys.
If you generate new API keys, your old API keys will continue to work. This allows you to rotate your keys without customers experiencing any downtime.
To generate a new set of API keys for your user:
- Log into the Control Panel
- Navigate to Account > My user
- Under API Keys, Tokenization Keys, Encryption Keys, click View Authorizations
- Click Generate New API Key